Lacework Unveils Free Cloud Care Program to Aid in Industry Fight Against Log4j

Lacework, a data-driven security platform for the cloud, has introduced Lacework Cloud Care. It’s a free rescue program for security and DevOps professionals fighting the Log4j attack, regardless of whether or not they are Lacework clients. For enterprises attempting to understand if their cloud environment is being abused by the Log4j vulnerability, Lacework Cloud Care comprises three complimentary program elements: a Threat Hunter Assessment, a Coverage Booster for Lacework Customers, and a help hotline.

With any zero day vulnerability, it is critical to figure out quickly if you are vulnerable (and to what degree) and if you’ve been hacked. Attackers will try to exploit vulnerabilities to get access to a company, frequently by exploiting the flaw before it is rectified. Even before a vulnerability is discovered, widely reported, and fixed, Lacework’s unique Polygraph technology would learn how an environment typically behaves and detects aberrant activity.

Lacework would help security teams analyze and respond quicker by automatically detecting if attacks have been effective and providing visuals that offer greater information around what happened. When it comes to finding vulnerabilities, Lacework not only assists organizations in quickly and confidently identifying all vulnerable systems. It would also allow them to prioritize remediation based on risk and what’s currently running. Next to that, it would help prevent the re-introduction of vulnerabilities over time, thanks to continuous checks during build and runtime.

The components of the Lacework Cloud Care program include a:

  • Free Threat Hunter Assessment – Lacework is giving a free, no-obligation 14-day Cloud Threat Hunting Assessment to assist practitioners swiftly deal with Log4j and other known or undiscovered dangers. The company’s cloud security specialists will collaborate with users to identify all susceptible systems throughout the whole cloud and container environments, as well as continually monitor for active indicators of compromise.
  • Coverage Booster for Lacework Customers – Current Lacework clients may benefit from an instant expansion of coverage for Lacework Platform usage, allowing them to double down and better understand where they may be vulnerable.
  • Support Hotline – All Security and DevOps experts, regardless of whether they are Lacework clients, have access to a Log4j hotline for queries and support.
Photo Seong Park, Chief Customer Officer at Lacework
“We’ll continue to see ripples from the Log4j attack across the industry for months, if not years to come as attackers seek new ways to evade detection to exploit this vulnerability,” said Seong Park, Chief Customer Officer at Lacework.

“We’ll continue to see ripples from the Log4j attack across the industry for months, if not years to come as attackers seek new ways to evade detection to exploit this vulnerability. That’s why it is critical companies have visibility across their entire environment in real-time and address the root cause versus patching best guess fixes,” said Seong Park, Chief Customer Officer at Lacework. “Our customers are dialing up their usage of the Lacework platform because it’s helping them see where they are compromised or otherwise vulnerable within hours or less, in many cases spotting trouble areas other vendors have missed. With Lacework Cloud Care, we hope to bring the benefits of our platform to the masses helping those on the front lines secure and protect their organizations against Log4j quickly and effectively.”

The Lacework Cloud Security Platform, powered by Polygraph, automates cloud security at scale. Founded in 2015 and headquartered in San Jose, California, Lacework is backed by leading investors like Sutter Hill Ventures, Altimeter Capital, D1 Capital Partners, Tiger Global Management, Counterpoint Global (Morgan Stanley), Franklin Templeton, Durable Capital, General Catalyst, XN, Coatue, Dragoneer, Liberty Global Ventures, and Snowflake Ventures, among others.